{"id":492990,"date":"2022-12-03T03:48:23","date_gmt":"2022-12-03T05:48:23","guid":{"rendered":"https:\/\/teknomers.com\/fr\/google-deploie-une-nouvelle-mise-a-jour-du-navigateur-chrome-pour-corriger-une-autre-vulnerabilite-zero-day\/"},"modified":"2022-12-03T03:48:24","modified_gmt":"2022-12-03T05:48:24","slug":"google-deploie-une-nouvelle-mise-a-jour-du-navigateur-chrome-pour-corriger-une-autre-vulnerabilite-zero-day","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/google-deploie-une-nouvelle-mise-a-jour-du-navigateur-chrome-pour-corriger-une-autre-vulnerabilite-zero-day\/","title":{"rendered":"Google d\u00e9ploie une nouvelle mise \u00e0 jour du navigateur Chrome pour corriger une autre vuln\u00e9rabilit\u00e9 Zero-Day"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both;\"><\/div>\n<p>Le g\u00e9ant de la recherche Google a publi\u00e9 vendredi une mise \u00e0 jour de s\u00e9curit\u00e9 hors bande pour corriger une nouvelle faille zero-day activement exploit\u00e9e dans son navigateur Web Chrome.<\/p>\n<p>La faille de haute gravit\u00e9, suivie comme <a rel=\"nofollow noopener\" href=\"https:\/\/chromereleases.googleblog.com\/2022\/12\/stable-channel-update-for-desktop.html\" target=\"_blank\">CVE-2022-4262<\/a>, concerne un bogue de confusion de type dans le moteur JavaScript V8.  Clement Lecigne du Threat Analysis Group (TAG) de Google a \u00e9t\u00e9 cr\u00e9dit\u00e9 d&#8217;avoir signal\u00e9 le probl\u00e8me le 29 novembre 2022.<\/p>\n<p>Les vuln\u00e9rabilit\u00e9s de confusion de type pourraient \u00eatre militaris\u00e9es par des acteurs de la menace pour effectuer un acc\u00e8s m\u00e9moire hors limites, ou conduire \u00e0 un plantage et \u00e0 l&#8217;ex\u00e9cution de code arbitraire.<\/p>\n<p>Selon la base de donn\u00e9es nationale des vuln\u00e9rabilit\u00e9s du NIST, la faille <a rel=\"nofollow noopener\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2022-4262\" target=\"_blank\">permis<\/a> un &#8220;attaquant distant pour potentiellement exploiter la corruption de tas via une page HTML sp\u00e9cialement con\u00e7ue&#8221;.<\/p>\n<div class=\"ad_two clear\"><center class=\"cf\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/uptycs-inside\" target=\"_blank\" title=\"CyberSecurity\"><img decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" loading=\"lazy\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/11\/Des-chercheurs-detaillent-la-vulnerabilite-inter-locataire-dAppSync-dans-Amazon-Web.jpg\" width=\"728\" height=\"90\"\/><\/a><\/center><\/div>\n<p>Google a reconnu l&#8217;exploitation active de la vuln\u00e9rabilit\u00e9, mais s&#8217;est abstenu de partager des d\u00e9tails suppl\u00e9mentaires pour emp\u00eacher de nouveaux abus.<\/p>\n<p>CVE-2022-4262 est la quatri\u00e8me faille de confusion de type activement exploit\u00e9e que Google a corrig\u00e9e depuis le d\u00e9but de l&#8217;ann\u00e9e.  C&#8217;est aussi la neuvi\u00e8me faille zero-day dans Chrome que les attaquants ont exploit\u00e9e \u00e0 l&#8217;\u00e9tat sauvage en 2022 &#8211;<\/p>\n<p>Il est recommand\u00e9 aux utilisateurs de mettre \u00e0 niveau vers la version 108.0.5359.94 pour macOS et Linux et 108.0.5359.94\/.95 pour Windows afin d&#8217;att\u00e9nuer les menaces potentielles.<\/p>\n<p>Il est \u00e9galement conseill\u00e9 aux utilisateurs de navigateurs bas\u00e9s sur Chromium tels que Microsoft Edge, Brave, Opera et Vivaldi d&#8217;appliquer les correctifs au fur et \u00e0 mesure de leur disponibilit\u00e9.<\/p>\n<p><\/p>\n<div class=\"cf note-b\">Vous avez trouv\u00e9 cet article int\u00e9ressant ?  Suivez-nous sur <a rel=\"nofollow noopener\" href=\"https:\/\/twitter.com\/thehackersnews\" target=\"_blank\">Twitter <i class=\"icon-font icon-twitter\">\uf099<\/i><\/a>  et <a rel=\"nofollow noopener\" href=\"https:\/\/www.linkedin.com\/company\/thehackernews\/\" target=\"_blank\">LinkedIn<\/a> pour lire plus de contenu exclusif que nous publions.<\/div>\n<\/div>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\n<br \/><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2022\/12\/google-rolls-out-new-chrome-browser.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Le g\u00e9ant de la recherche Google a publi\u00e9 vendredi une mise \u00e0 jour de s\u00e9curit\u00e9 hors bande pour corriger une nouvelle faille zero-day activement exploit\u00e9e dans son navigateur Web Chrome. La faille de haute gravit\u00e9, suivie comme CVE-2022-4262, concerne un bogue de confusion de type dans le moteur JavaScript V8. Clement Lecigne du Threat Analysis [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":492991,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[4640,16757,4168,25646,4158,4165,4161,7050,7755,3995,4157,4159,4171,4170,4167,2811,4160,1281,197,4163,4162,185,4172,4169,196,4166,3667,4164,35759],"class_list":["post-492990","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-autre","tag-chrome","tag-comment-pirater","tag-corriger","tag-cyber-actualites","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-deploie","tag-google","tag-jour","tag-lactualite-de-la-cybersecurite","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-la-securite-des-informations","tag-logiciel-malveillant-de-ransomware","tag-mise","tag-mises-a-jour-de-la-cybersecurite","tag-navigateur","tag-nouvelle","tag-nouvelles-de-piratage","tag-nouvelles-de-pirates","tag-pour","tag-securite-informatique","tag-securite-internet","tag-une","tag-violation-de-donnees","tag-vulnerabilite","tag-vulnerabilite-logicielle","tag-zeroday"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/492990","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=492990"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/492990\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/492991"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=492990"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=492990"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=492990"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}